Lucene search
K

211 matches found

Citrix
Citrix
added 2024/12/06 12:0 a.m.5 views

The Image Does Not Have Layer Data Located In HKEY_CLASSES_ROOT or HKEY_CURRENT_USER

In one use case the published image, with Windows 11 OS, was missing the value, HKEYCLASSESROOT\mailto\Default. The Windows 10 images were ok...

7.2AI score
Exploits0
NVD
NVD
added 2024/10/25 11:15 a.m.18 views

CVE-2024-47016

there is a possible privilege escalation due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS0.00074EPSS
Exploits0References1
CVE
CVE
added 2024/10/25 10:34 a.m.79 views

CVE-2024-47016

CVE-2024-47016 affects Google Pixel devices in the ACPM component. The vulnerability arises from an insecure default value, enabling local privilege escalation with no additional execution privileges or user interaction required. The impact is described as local escalation to a higher privilege l...

7.8CVSS7.2AI score0.00074EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/10/25 10:34 a.m.15 views

CVE-2024-47016

there is a possible privilege escalation due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00074EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/25 10:34 a.m.7 views

CVE-2024-47016

there is a possible privilege escalation due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.4AI score0.00074EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/25 10:34 a.m.11 views

CVE-2024-44099

There is a possible Local bypass of user interaction due to an insecure default value. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

6.6AI score0.00078EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/25 10:34 a.m.18 views

CVE-2024-44099

There is a possible Local bypass of user interaction due to an insecure default value. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00078EPSS
Exploits0References1
CVE
CVE
added 2024/10/25 10:34 a.m.74 views

CVE-2024-44099

The CVE-2024-44099 entry describes a local information-disclosure vulnerability caused by an insecure default value that enables a local bypass of user interaction with no privileges. It is associated with Google Pixel devices (notably listed under the Pixel update bulletin) and is categorized as...

5.5CVSS6.4AI score0.00078EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/10/25 12:0 a.m.6 views

PT-2024-32343 · Google · Android

Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: The issue is related to a possible privilege escalation due to an insecure default value, which could lead to local escalation of privilege with no additional execution privileges neede...

7.8CVSS6.7AI score0.00074EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/10/16 2:5 a.m.21 views

CVE-2024-9104 UltimateAI <= 2.8.3 - Limited User Password Change due to Improper Empty and Missing Default Value Check

The UltimateAI plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 2.8.3. This is due to the improper empty value check and a missing default activated value check in the 'ultimateaichangepass' function. This makes it possible for unauthenticated...

5.6CVSS0.00322EPSS
Exploits0References2
OSV
OSV
added 2024/10/09 11:15 p.m.2 views

UBUNTU-CVE-2024-48933

A cross-site scripting XSS vulnerability in LemonLDAP::NG before 2.19.3 allows remote attackers to inject arbitrary web script or HTML into the login page via a username if userControl has been set to a non-default value that allows special HTML characters...

6.1CVSS5.8AI score0.003EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/10/09 12:0 a.m.18 views

CVE-2024-48933

A cross-site scripting XSS vulnerability in LemonLDAP::NG before 2.19.3 allows remote attackers to inject arbitrary web script or HTML into the login page via a username if userControl has been set to a non-default value that allows special HTML characters...

0.003EPSS
Exploits0References1
OSV
OSV
added 2024/10/01 12:0 a.m.9 views

PUB-A-328221525

there is a possible privilege escalation due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.8AI score0.00074EPSS
Exploits0References1
NVD
NVD
added 2024/09/13 9:15 p.m.32 views

CVE-2024-44096

there is a possible arbitrary read due to an insecure default value. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...

4.4CVSS0.00078EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/13 8:28 p.m.25 views

CVE-2024-44096

there is a possible arbitrary read due to an insecure default value. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...

0.00078EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/13 8:28 p.m.17 views

CVE-2024-44096

there is a possible arbitrary read due to an insecure default value. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...

6.3AI score0.00078EPSS
Exploits0References1
CVE
CVE
added 2024/09/13 8:28 p.m.101 views

CVE-2024-44096

CVE-2024-44096 affects Google Pixel devices (Android) and is caused by an insecure default value that enables an arbitrary read, potentially leading to local information disclosure with system execution privileges. Exploitation does not require user interaction. The issue is listed in the Pixel s...

4.4CVSS6.4AI score0.00078EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/09/13 12:0 a.m.4 views

Google Pixel 安全漏洞

Google Pixel is a smartphone from Google USA. Google Pixel suffers from a security vulnerability that stems from the inclusion of an insecure default value that could be read arbitrarily...

4.4CVSS6.6AI score0.00078EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/09/13 12:0 a.m.6 views

PT-2024-30947 · Google · Android

Name of the Vulnerable Software and Affected Versions: Software affected versions not specified Description: The issue is related to an insecure default value, which could lead to a possible arbitrary read. This might cause local information disclosure with System execution privileges needed. Use...

4.4CVSS6.2AI score0.00078EPSS
Exploits0References7
OSV
OSV
added 2024/09/01 12:0 a.m.25 views

PUB-A-342511931

there is a possible arbitrary read due to an insecure default value. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...

4.4CVSS4.4AI score0.00078EPSS
Exploits0References1
Rows per page
Query Builder